Improving Error Handling in Rustls
Creating error messages that are clear and detailed.
Rustls Joins Rust Foundation's Rust Innovation Lab
The Rust Foundation just announced the launch of the Rust Innovation Lab, with the Rustls TLS library as the inaugural hosted project.
Opportunistic Encryption Is Coming to Hickory DNS
Hickory DNS is getting support for RFC 9539 opportunistic encryption.
sudo-rs Headed to Ubuntu
A security tool incubated by Prossimo takes on a big role.
Compatibility with C is Key for Memory Safe Software
We're in the beginning phases of a journey towards memory safety for the Internet's critical software infrastructure, and as we get going it makes the most sense to break down big problems into smaller ones by focusing on replacing components within existing C and C++ software.
$20,000 rav1d AV1 Decoder Performance Bounty
Help us close a performance gap.
Rustls Server-Side Performance
Current versions of Rustls show competitive performance when processing many connections at the same time on a server.
An Update on Memory Safety in the Linux Kernel
Rust drivers are on the way via growing interest and community.
How Prossimo's Risk and Opportunity Criteria Help Us Plan
Identifying memory safety work that is both high impact and efficiently achievable.
Hickory DNS is Moving Toward Production Readiness
A high performance, memory safe, and open source recursive DNS resolver now has improved DNSSEC support, NSEC3 support, and new features.
A Note from our Executive Director
Reflecting on a decade of growth, innovation, and impact at ISRG.
Security-Sensitive Industries Move to Memory Safety
Growing adoption of memory safe and high performance TLS.
A new home for memory safe Zlib
Zlib-rs, an open source memory safe implementation of zlib, has a new long-term home at the Trifecta Tech Foundation.
Rustls Outperforms OpenSSL and BoringSSL
Memory Safe Rustls Outperforms OpenSSL and BoringSSL.
River Reverse Proxy Making Great Progress
Memory safe River now supports load balancing, rate limiting, graceful reloads, and more.
Porting C to Rust for a Fast and Safe AV1 Media Decoder
We ported the
dav1d AV1 decoder to Rust. Here’s how we did it and what we learned. A new home for memory safe sudo/su
Sudo-rs, an open source memory safe implementation of sudo/su, has a new long-term home at the Trifecta Tech Foundation.
More Memory Safety for Let’s Encrypt: Deploying ntpd-rs
NTP is critical to how TLS works, and now it’s memory safe at Let’s Encrypt.
Encrypted Client Hello (ECH) Support for Rustls
Adding a TLS extension that allows clients to encrypt their Client Hello
Providing official Fedora Linux RPM packages for ntpd-rs and sudo-rs
Memory safe NTP and sudo are now in Fedora Linux.
Rustls Gains OpenSSL and Nginx Compatibility
Nginx users can easily switch from OpenSSL to Rustls for better security.
A Readout from Tectonics
Challenges and solutions for moving forward with memory safety for critical Internet infrastructure.
The Rustls TLS Library Adds Post-Quantum Key Exchange Support
Protecting TLS encryption keys in a post-quantum world.
White House, Craig Newmark Support Memory Safe Software
Growing attention on the solvability of memory safety.
Sudo-rs dependencies: when less is better
Here’s how we reduced dependencies from 135 to 3 in sudo-rs.
Rustls Now Using AWS Libcrypto for Rust, Gains FIPS Support
The Rustls TLS library is using aws-lc-rs for cryptography by default, with the option to enable FIPS support.
Announcing River: A High Performance and Memory Safe Reverse Proxy Built on Pingora
Improving security for a critical piece of Internet infrastructure.
Automating Releases for Bindgen
An update about improving Bindgen from our partners at Ferrous Systems.
Securing the Web: Rustls on track to outperform OpenSSL
A focus on performance with a strong benchmarking system makes Rustls an attractive and memory safe option for TLS.
A Year-End Letter from our Vice President
A summary of how ISRG’s three projects, Let’s Encrypt, Divvi Up, and Prossimo continue to improve security and privacy.
Tectonics 2023: a Productive Convening to Accelerate Memory Safety
Our first memory safety event generated enthusiasm, ideas, and action toward a more memory safe future.
Announcing Hickory DNS
We are proud to announce that Trust-DNS has a new name!
Advancing Rustls and Rust for Linux with OpenSSF Support
Improving functionality and scalability for security sensitive Open Source software.
The First Stable Release of a Memory Safe sudo Implementation
Our Rust rewrite of sudo is ready for use.
Prossimo announces Tectonics: an event to shift the work of memory safety forward
The event will be November 2, in San Francisco.
$1.5M from Sovereign Tech Fund to Fuel Memory Safety
Funding supports memory safety in TLS, DNS, and video/image decoding.
ISRG’s 10th Anniversary
As ISRG celebrates its 10th anniversary, Co-founder and Executive Director Josh Aas reflects on the accomplishments of the nonprofit and looks ahead to its continued impact in the years to come.
AWS commits $1M to bring memory safety to critical parts of the Web
AWS commits $1M to advance four Prossimo initiatives, improving memory safety for TLS, NTP, media codec, and permissions boundaries.
Bringing Memory Safety to sudo and su
We are reimplementing sudo and su utilities in Rust.
Memory Safe Network Time (NTP) Has New Home, Seeks Early Adopters
Bringing more safety to a critical network-based service.
Rustls 0.21.0 Released With Exciting New Features
We’re incredibly excited about the latest release of Rustls, a memory safe TLS implementation
A Safer High Performance AV1 Decoder
Memory safety for a major source of exploitable vulnerabilities.
Klint: Compile-time Detection of Atomic Context Violations for Kernel Rust Code
The klint tool will help facilitate adoption of Rust in the Linux kernel.
Improving Rust compile times to enable adoption of memory safety
Guest author Rémy Rakic discusses his work to improve Rust compiler performance.
Assessing Progress on Memory Safety at USENIX Enigma Conference
A reflection on the lively conversation about challenges and opportunities to improve memory safety.
A Year-End Letter from our Executive Director
It's been an exciting year for ISRG and its projects: from Let's Encrypt issuing its three billionth certificate to Prossimo supporting the efforts to get Rust into the Linux kernel.
Rust in the Linux Kernel: Just the Beginning
The next steps to bring memory safety into the Linux Kernel.
A Memory Safe Implementation of the Network Time Protocol
NTP is critical to the Internet’s functioning and we’ve collaborated with Tweede golf to build a high-performance, memory safe implementation.
Memory Safety for the World’s Largest Software Project
An update from guest author Miguel Ojeda on his contributions in the Rust for Linux initiative.
Bringing Memory Safe TLS to Apache httpd
Guest author Stefan Eissing discusses the process of developing a memory safe TLS backend for Apache httpd.
A Year-End Letter from our Executive Director
A summary of the progress made toward improving security and privacy with ISRG’s three projects: Let’s Encrypt serves 260M websites, our Prossimo project seeks to solve problems caused by lack of memory safety, and Divvi Up is building a privacy-preserving metrics system.
Supporting Miguel Ojeda’s Work on Rust in the Linux Kernel
When we think about what code is most critical for today’s Internet, the Linux kernel is at the top of the list.
Preparing Rustls for Wider Adoption
It’s time for the Internet to move on to more secure software, and that’s why our Memory Safety Initiative is coordinating work to make further improvements to the Rustls TLS library.
A Memory Safe TLS Module for the Apache HTTP Server
The Apache HTTP Server, httpd, is an important piece of the Internet’s infrastructure. Hundreds of millions of websites use it every day to serve requests. As such, improvements to httpd security have broad impact.
Memory Safe ‘curl’ for a More Secure Internet
Memory safety vulnerabilities represent one of the biggest threats to Internet security. As such, we at ISRG are interested in finding ways to make the most heavily relied-upon software on the Internet memory safe.
Subscribe via RSS